Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qpoNy1ExOS1xlqhEGKioRkVTH5c.cer
File: qpoNy1ExOS1xlqhEGKioRkVTH5c.cer (raw, json)
Hash identifier: 7A6/WbA+lbOy6zpr3mSj0f9bdFkBcAULH1mGoO+EZ+o=
Subject key identifier: AA:9A:0D:CB:51:31:39:2D:71:96:A8:44:18:A8:A8:46:45:53:1F:97
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C59D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91EF66D/511A892E71A811EEB437F181C4F9AE02/qpoNy1ExOS1xlqhEGKioRkVTH5c.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91EF66D/511A892E71A811EEB437F181C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 23 Oct 2023 13:30:29 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: AS: 132060
IP: 103.67.76.0/23
IP: 2001:df3:ec0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 00:13:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116125 (0x1c59d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 23 13:30:29 2023 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A91EF66D/serialNumber=AA9A0DCB5131392D7196A84418A8A84645531F97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:5c:2f:32:a5:ea:c6:c3:a8:cb:16:d1:74:b6:
a3:67:13:3a:ba:9a:97:47:de:a9:14:cc:f2:24:2c:
bb:c3:49:ba:58:41:fb:1e:56:01:42:23:8d:fd:7c:
3b:8a:83:4c:3e:26:35:bb:04:d3:4a:9d:35:7d:61:
1e:c4:47:c9:b4:7e:80:9c:80:a9:9f:b5:26:58:73:
d3:9e:71:cd:60:e7:3d:96:57:f1:4e:12:5c:7b:02:
33:87:ac:1a:f3:8e:0f:25:7d:2f:31:5e:31:7b:87:
97:08:25:f8:d8:ad:27:25:3f:c1:fb:a9:cd:cd:a2:
a9:54:a8:57:82:8b:94:dd:8d:7c:f9:89:a3:1f:64:
4b:98:6c:0e:6a:2b:e9:5a:b9:4b:c3:a2:d4:2b:67:
65:bb:22:a6:4a:89:82:25:7d:28:29:b2:21:82:1a:
53:95:fd:b2:48:c6:37:bc:60:33:a2:50:e9:78:a2:
ac:bf:fa:79:49:df:69:ff:78:4f:57:ad:0b:a4:69:
1c:c9:f8:9d:b8:fc:f2:8b:42:c0:ed:a2:06:bf:6f:
a4:a4:84:f3:cb:c6:88:38:08:15:08:84:57:43:37:
69:b8:ba:3c:99:50:d4:43:ac:47:ec:a8:1a:10:61:
c4:c6:a0:23:e6:1f:1b:6a:ca:6b:65:6f:4e:c2:24:
9a:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:9A:0D:CB:51:31:39:2D:71:96:A8:44:18:A8:A8:46:45:53:1F:97
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91EF66D/511A892E71A811EEB437F181C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91EF66D/511A892E71A811EEB437F181C4F9AE02/qpoNy1ExOS1xlqhEGKioRkVTH5c.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
132060
sbgp-ipAddrBlock: critical
IPv4:
103.67.76.0/23
IPv6:
2001:df3:ec0::/48
Signature Algorithm: sha256WithRSAEncryption
2b:51:bd:62:97:91:0e:e1:e2:6e:1d:8a:1b:22:e7:29:0d:74:
3c:88:65:4d:98:93:96:3f:9c:2a:f0:fa:32:49:02:07:c0:4c:
d8:3e:11:ac:44:10:88:6b:ae:44:0f:d7:8d:26:cc:5f:02:fb:
71:24:84:77:e9:cd:ef:df:11:d1:29:10:73:8e:2c:72:a5:90:
e8:60:f5:c7:9d:0e:a5:c8:c9:41:ba:4b:e1:c8:78:f5:fa:3a:
a5:30:b1:3b:bb:f3:cf:91:78:cc:94:0e:1b:8a:4c:b0:d3:84:
86:2b:b1:45:60:66:2d:4d:51:a9:78:21:c6:00:97:43:9e:0a:
5c:73:f0:b7:7d:1f:a5:e4:18:f1:ef:f8:98:9e:c9:74:f2:53:
6f:80:63:6d:2d:6f:28:fa:d9:31:59:d2:7b:42:a0:45:2d:08:
a4:46:d4:27:88:06:98:d7:22:3d:08:22:20:d3:d0:48:ae:61:
4a:74:a2:63:9a:55:d0:96:62:69:58:6c:fc:f7:1e:8b:b1:b4:
ec:09:27:05:28:8f:d9:9a:cc:3f:b8:4a:b2:e0:cf:e2:55:33:
08:56:1a:d1:b9:02:cb:a6:f8:d0:85:3d:ce:c8:90:d7:8e:77:
ed:47:ee:d4:fe:95:56:e9:7f:ca:69:f5:90:6f:3b:6a:3f:d0:
2e:74:6d:b9
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu May 2 00:53:26 2024 by rpki-client on console-ams.rpki-client.org